top button
Flag Notify
    Connect to us
      Site Registration

Site Registration

How to Secure WordPress website?

+4 votes
242 views
How to Secure WordPress website?
posted Nov 18, 2015 by Vrije Mani Upadhyay

Share this question
Facebook Share Button Twitter Share Button LinkedIn Share Button

1 Answer

0 votes

Few Tips -
1. Use secure hosting
2. Update all the things/patches
3. Strengthen up those passwords i.e. ‘letmein’, ‘abc123’, or ‘password’
4. Never use “admin” as your username
5. Hide your username from the author archive URL
6. Limit login attempts
7. Disable file editing via the dashboard
8. Try to avoid free themes
9. Keep a daily backup
10. Use security plugins (few are listed as follows)
http://wordpress.org/plugins/better-wp-security/ – offers a wide range of security features.
http://wordpress.org/plugins/bulletproof-security/ – protects your site via .htaccess.
http://wordpress.org/plugins/all-in-one-wp-security-and-firewall/ – adds a firewall to your site.
http://wordpress.org/plugins/sucuri-scanner/ – scans your site for malware etc.
http://wordpress.org/plugins/wordfence/ – full-featured security plugin.
http://wordpress.org/plugins/websitedefender-wordpress-security/ – comprehensive security tool.
http://wordpress.org/plugins/exploit-scanner/ – searches your database for any suspicious code.

answer Nov 18, 2015 by Salil Agrawal
Similar Questions
+1 vote
How to run wordpress website on AWS?

I have transferred a wordpress website on AWS (EC2 and RDS-Mysql servers). The DNS has been setup in Route53.

The wordpress files has been located under directory: 

/var/www/html

And the mysql database is imported on RDS. The home page looks fine but when I click on the other pages, it gives "404 not found" error. I have modified /etc/httpd/conf/httpd.conf file to allow WordPress to use permalinks:

<Directory "/var/www/html">
AllowOverride All

I have also checked the size of transferred files and they look as same as the main files.

Any help would be appreciated.

0 votes
How to redirect a Wordpress logout to custom URL?

I want to send a user, logging out of WordPress, to a custom URL.
I used this below code into functions.php in my wordpress theme:

add_filter( 'logout_url', 'my_logout_url' );
    function my_logout_url( $url ) {
       return 'http://yourdomain.com/?a=logout';
    }

But it does not work.
How can I do this?
Many thanks in advance for your help or advice.

0 votes
How to add variable inside an embedding gravity forms in Wordpress?

I need to add a variable inside an array of an embedding gravity forms to populate 2 hidden fields: email and jobname.

Here is my code:

<?php 

    $email = get_field( "email_application" );
    $jobtitle = get_the_title();

    gravity_form( 5, false, false, false, array('email'=>'echo "$email";','jobname'=>'print "$jobtitle";'), false); 
?>

I know that echo, print or just the variable doesn't work as it show like this in my code:

<input name="input_6" id="input_5_6" type="hidden" value="print $jobtitle" class="gform_hidden" aria-invalid="false">

and

<input name="input_5" id="input_5_5" type="hidden" value="echo "$email";" class="gform_hidden" aria-invalid="false">

Instead I should get:

<input name="input_6" id="input_5_6" type="hidden" value="My job title" class="gform_hidden" aria-invalid="false">

and

<input name="input_5" id="input_5_5" type="hidden" value="myaddress@email.com" class="gform_hidden" aria-invalid="false">

Can someone could point me in the right direction.

Thank you.

...